What is the severity of CVE-2017-1515?

CVE-2017-1515 is classified as a medium severity vulnerability due to the potential exposure of sensitive information.

How do I fix CVE-2017-1515?

To fix CVE-2017-1515, update IBM DOORS Web Access to a version that includes the security patch addressing this vulnerability.

What types of systems are affected by CVE-2017-1515?

CVE-2017-1515 affects IBM DOORS Web Access versions 9.5 and 9.6, including its corresponding engineering requirements management systems.

What can an attacker do with CVE-2017-1515?

An authenticated attacker could exploit CVE-2017-1515 to obtain sensitive information from internal server error responses.

Is CVE-2017-1515 still a risk if I am using supported IBM software?

If you are using a version of IBM DOORS Web Access that is no longer supported or not updated, you remain at risk from CVE-2017-1515.

Vulnerability/
CVE-2017-1515

medium

4.3

CWE

200

26/1/2018

5/2/2025

CVE-2017-1515: Infoleak

First published: Fri Jan 26 2018(Updated: )

IBM Doors Web Access 9.5 and 9.6 could allow an authenticated user to obtain sensitive information from HTTP internal server error responses. IBM X-Force ID: 129825.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
	>=9.5.0.0<=9.5.0.7
	>=9.5.1.0<=9.5.1.8
	>=9.5.2.0<=9.5.2.7
	>=9.6.0.0<=9.6.0.6
	>=9.6.1.0<=9.6.1.9
IBM Engineering Requirements Management DOORS	>=9.5.0.0<=9.5.0.7
IBM Engineering Requirements Management DOORS	>=9.5.1.0<=9.5.1.8
IBM Engineering Requirements Management DOORS	>=9.5.2.0<=9.5.2.7
IBM Engineering Requirements Management DOORS	>=9.6.0.0<=9.6.0.6
IBM Engineering Requirements Management DOORS	>=9.6.1.0<=9.6.1.9

Remedy

http://www.ibm.com/support/docview.wss?uid=swg22012789

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-1515?
CVE-2017-1515 is classified as a medium severity vulnerability due to the potential exposure of sensitive information.
How do I fix CVE-2017-1515?
To fix CVE-2017-1515, update IBM DOORS Web Access to a version that includes the security patch addressing this vulnerability.
What types of systems are affected by CVE-2017-1515?
CVE-2017-1515 affects IBM DOORS Web Access versions 9.5 and 9.6, including its corresponding engineering requirements management systems.
What can an attacker do with CVE-2017-1515?
An authenticated attacker could exploit CVE-2017-1515 to obtain sensitive information from internal server error responses.
Is CVE-2017-1515 still a risk if I am using supported IBM software?
If you are using a version of IBM DOORS Web Access that is no longer supported or not updated, you remain at risk from CVE-2017-1515.

collector/nvd-index
agent/type
agent/weakness
agent/severity
agent/references
agent/author
agent/remedy
agent/description
collector/mitre-cve
source/MITRE
agent/first-publish-date
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/last-modified-date
agent/source
agent/softwarecombine
agent/tags
agent/event
vendor/ibm
canonical/ibm engineering requirements management doors
version/ibm engineering requirements management doors/9.5.0.0
version/ibm engineering requirements management doors/9.5.0.7
version/ibm engineering requirements management doors/9.5.1.0
version/ibm engineering requirements management doors/9.5.1.8
version/ibm engineering requirements management doors/9.5.2.0
version/ibm engineering requirements management doors/9.5.2.7
version/ibm engineering requirements management doors/9.6.0.0
version/ibm engineering requirements management doors/9.6.0.6
version/ibm engineering requirements management doors/9.6.1.0
version/ibm engineering requirements management doors/9.6.1.9